Overview

overview

10

Static

static

1

001f73c318...ab.dll

windows7-x64

10

001f73c318...ab.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    001f73c3184ad7c382b85f673ea93fbaba932afa7d875bb651e00d64189a7aab

  • Size

    1.4MB

  • Sample

    230401-x3g7xscb24

  • MD5

    5a5cf1ea8b62e7589d6474e652c36c1f

  • SHA1

    d3438a695adaa1ba52b83ecac3944744829fee62

  • SHA256

    001f73c3184ad7c382b85f673ea93fbaba932afa7d875bb651e00d64189a7aab

  • SHA512

    84aa3da7a1dccce8ec9ab75ec2c4b8f229ed9371a0fb0997a0a207891bdc1a84062d6c180e23e1ca78349f0b97a1034cbc56bd6a5774003959241056cdfa1d92

  • SSDEEP

    24576:rD8Bnow5qTF2xn0r4Wv2aHzt3VtxGc9BAUjkh7zhdl+3SutwSy9l65ZvdroKDvhr:X8BoMqx2xnu4cZdZ9rjuXI3PwSPZvDDl

Score
10/10
blackmoonbankertrojan

Malware Config

Targets

    • Target

      001f73c3184ad7c382b85f673ea93fbaba932afa7d875bb651e00d64189a7aab

    • Size

      1.4MB

    • MD5

      5a5cf1ea8b62e7589d6474e652c36c1f

    • SHA1

      d3438a695adaa1ba52b83ecac3944744829fee62

    • SHA256

      001f73c3184ad7c382b85f673ea93fbaba932afa7d875bb651e00d64189a7aab

    • SHA512

      84aa3da7a1dccce8ec9ab75ec2c4b8f229ed9371a0fb0997a0a207891bdc1a84062d6c180e23e1ca78349f0b97a1034cbc56bd6a5774003959241056cdfa1d92

    • SSDEEP

      24576:rD8Bnow5qTF2xn0r4Wv2aHzt3VtxGc9BAUjkh7zhdl+3SutwSy9l65ZvdroKDvhr:X8BoMqx2xnu4cZdZ9rjuXI3PwSPZvDDl

    Score
    10/10
    blackmoonbankertrojan

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Blocklisted process makes network request

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks